2002 CVE Vulnerabilities
2,393 CVEs published in 2002.
| CVE ID | Severity | CVSS | EPSS | Published | Description |
|---|---|---|---|---|---|
| CVE-2002-1795 | — | — | 16.8% | Dec 31, 2002 | Cross-site scripting (XSS) vulnerability in connect.asp in Microsoft Terminal Services Advanced Client (TSAC) ActiveX co... |
| CVE-2002-1799 | — | — | 3.6% | Dec 31, 2002 | Cross-site scripting (XSS) vulnerability in phpRank 1.8 allows remote attackers to inject arbitrary web script or HTML v... |
| CVE-2002-1807 | — | — | 1.2% | Dec 31, 2002 | Cross-site scripting (XSS) vulnerability in phpWebSite 0.8.3 allows remote attackers to inject arbitrary web script or H... |
| CVE-2002-1801 | — | — | 1.5% | Dec 31, 2002 | ImageFolio 2.23 through 2.27 allows remote attackers to obtain sensitive information via a nonexistent image category, w... |
| CVE-2002-1802 | — | — | 1.7% | Dec 31, 2002 | Cross-site scripting (XSS) vulnerability in Xoops 1.0 RC3 allows remote attackers to inject arbitrary web script or HTML... |
| CVE-2002-1812 | — | — | 1.1% | Dec 31, 2002 | Buffer overflow in gdam123 0.933 and 0.942 allows local users to execute arbitrary code via a long filename parameter. |
| CVE-2002-1716 | — | — | 14.3% | Dec 31, 2002 | The Host() function in the Microsoft spreadsheet component on Microsoft Office XP allows remote attackers to create arbi... |
| CVE-2002-1837 | — | — | 2.9% | Dec 31, 2002 | The getAlbumToDisplay function in idsShared.pm for Image Display System (IDS) 0.81 allows remote attackers to determine ... |
| CVE-2002-1813 | — | — | 6.9% | Dec 31, 2002 | Directory traversal vulnerability in AOL Instant Messenger (AIM) 4.8.2790 allows remote attackers to execute arbitrary p... |
| CVE-2002-1840 | — | — | 2.5% | Dec 31, 2002 | irssi IRC client 0.8.4, when downloaded after 14-March-2002, could contain a backdoor in the configuration file, which a... |
| CVE-2002-1811 | — | — | 7.2% | Dec 31, 2002 | Belkin F5D6130 Wireless Network Access Point running firmware AP14G8 allows remote attackers to cause a denial of servic... |
| CVE-2002-1734 | — | — | 2.7% | Dec 31, 2002 | NewsPro 1.01 allows remote attackers to gain unauthorized administrator access by setting their authentication cookie to... |
| CVE-2002-1841 | — | — | 2.2% | Dec 31, 2002 | The document management module in NOLA 1.1.1 and 1.1.2 does not restrict the types of files that are uploaded, which all... |
| CVE-2002-1848 | — | — | 0.3% | Dec 31, 2002 | TightVNC before 1.2.4 running on Windows stores unencrypted passwords in the password text control of the WinVNC Propert... |
| CVE-2002-1717 | — | — | 15.5% | Dec 31, 2002 | Microsoft Internet Information Server (IIS) 5.1 allows remote attackers to view path information via a GET request to (1... |
| CVE-2002-1719 | — | — | 2.1% | Dec 31, 2002 | Unknown vulnerability in Bavo 0.3 allows remote attackers to modify posted messages. |
| CVE-2002-1846 | — | — | 1.1% | Dec 31, 2002 | Yet Another Bulletin Board (YaBB) 1.40 and 1.41 does not require a user to submit the correct password before changing i... |
| CVE-2002-1571 | — | — | 0.4% | Dec 31, 2002 | The linux 2.4 kernel before 2.4.19 assumes that the fninit instruction clears all registers, which could lead to an info... |
| CVE-2002-1718 | — | — | 14.1% | Dec 31, 2002 | Microsoft Internet Information Server (IIS) 5.1 may allow remote attackers to view the contents of a Frontpage Server Ex... |
| CVE-2002-1849 | — | — | 2.5% | Dec 31, 2002 | ParaChat Server 4.0 does not log users off if the browser's back button is used, which allows remote attackers to cause ... |
| CVE-2002-1851 | — | — | 3.2% | Dec 31, 2002 | Buffer overflow in WS_FTP Pro 7.5 allows remote attackers to execute code on a client system via unknown attack vectors. |
| CVE-2002-1715 | — | — | 0.9% | Dec 31, 2002 | SSH 1 through 3, and possibly other versions, allows local users to bypass restricted shells such as rbash or rksh by up... |
| CVE-2002-1724 | — | — | 1.3% | Dec 31, 2002 | Cross-site scripting vulnerability (XSS) in phpimageview.php for PHPImageView 1.0 allows remote attackers to execute arb... |
| CVE-2002-1730 | — | — | 1.4% | Dec 31, 2002 | ASPjar Guestbook 1.00 allows remote attackers to delete arbitrary messages accessing the delete.asp administrative scrip... |
| CVE-2002-1635 | — | — | 4.4% | Dec 31, 2002 | The Apache configuration file (httpd.conf) in Oracle 9i Application Server (9iAS) uses a Location alias for /perl direct... |
Check if your code is affected by 2002 CVEs
Strix scans your code and infrastructure for known vulnerabilities automatically.
Scan your code now